Courtesy of its billion-dollar acquisition of security innovator Trusteer in 2013, IBM willadd behavioral biometric analysis to its digital banking fraud prevention solution, IBM Security Trusteer Pinpoint Detect, the company announced on Thursday. “Given enough time and resources, cyber criminals can defeat passwords and security questions,” VP of Strategy for IBM Security, Ravi Srinivasan said. With the addition of behavioral biometric technology, IBM’s security solution will be that much more effective against fraudsters using stolen credentials to get unauthorized access to bank accounts.

Behavioral biometrics, as Srinivasan explained, is based not on knowledge, but behavior. Using gesture modeling, which tracks, studies, and analyzes behavior of authorized users, the technology develops an increasingly accurate profile of what authorized, legitimate behavior looks like. This means that even with a user’s credentials, a fraudster will be unable to gain access unless they are able to exactly replicate the way the user typically logs on and navigates the website.

Even if a fraudster was able to mimic a user’s mouse and click behavior, as the company’s financial crime prevention strategist, Brooke Satti Charles told Fast Company, the technology is sensitive enough to detect “suspiciously identical” behavior. She compared this to a forged signature that may appear legitimate, but may include features that are incidental rather than part of a range of behaviors such as a random click or mouse movement. Charles added that the solution notes suspicious activity but does not automatically “lock out” users, ensuring a smooth experience for users while security administrators investigate on the backend. She also pointed out that Security Trusteer Pinpoint Direct focuses on patterns of movement on a page, not which pages are accessed, so visits to new areas of a website are not flagged as suspicious.